Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
File: IbgvyO2I-ZyrV9doAxdusnqfC_o.mft (raw, json)
Hash identifier: Xa5e2mqnHKffXAsnZmi6AtIKXud/KuS5CmJRG/5W6ZY=
Subject key identifier: 03:F2:78:F1:40:EC:05:35:38:EE:C8:C3:DD:58:B4:85:B0:4C:A0:33
Authority key identifier: 21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA
Certificate issuer: /CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa
Certificate serial: 01974666B7FECF0753933F771FAE4268D3BC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
Manifest number: 0D07
Signing time: Fri 06 Jun 2025 18:00:26 +0000
Manifest this update: Fri 06 Jun 2025 18:00:26 +0000
Manifest next update: Sat 07 Jun 2025 18:00:26 +0000
Files and hashes: 1: IbgvyO2I-ZyrV9doAxdusnqfC_o.crl (hash: 7JAq3z2hJ742s/DT5Al058CrtX4XR1ICdAj+JOHM5DI=)
2: ItUhScrgPwKkKUyhqEMMP6UQG5o.roa (hash: gmpeHaOEVGgSYmwc/n6Xey1Y6I6lJR2qqLtWqmrTzmc=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl
rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sat 07 Jun 2025 15:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:46:66:b7:fe:cf:07:53:93:3f:77:1f:ae:42:68:d3:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=21b82fc8ed88f99cab57d76803176eb27a9f0bfa
Validity
Not Before: Jun 6 18:00:26 2025 GMT
Not After : Jun 7 18:00:26 2025 GMT
Subject: CN=03f278f140ec053538eec8c3dd58b485b04ca033
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:a3:43:c4:21:2c:7e:45:27:b1:be:62:b4:fa:
be:6d:a9:ea:70:46:0f:fc:62:51:2e:cd:2c:8f:67:
8e:29:09:0f:11:f0:1a:8c:a5:c5:a2:9d:bc:4d:15:
1e:3a:e7:36:67:4b:e0:46:73:60:ee:8c:4d:96:5a:
a0:68:28:88:a3:05:7d:99:3f:79:b2:90:5b:e9:f4:
de:4b:f7:16:4c:e4:7e:6d:e2:db:2e:38:13:d9:d0:
e3:fe:1e:82:35:29:8a:80:98:a8:3b:4b:6c:9f:2c:
cf:32:e2:f7:ed:0f:0e:20:af:06:e5:69:f9:b7:04:
ef:e0:bf:b8:2e:2f:8e:0e:a3:b5:48:08:59:17:a9:
1b:b2:58:b2:8b:4b:e5:dc:e9:dc:67:1a:c2:26:31:
2b:0d:21:5a:b5:7e:7e:60:f9:45:32:4e:51:46:65:
38:31:46:ee:f1:14:8b:02:51:c9:de:eb:77:c8:c9:
51:ef:1b:c7:72:ef:75:18:19:b7:86:68:5f:0b:7a:
b8:78:6a:43:3a:d0:ec:64:2a:25:6f:0b:cb:6c:39:
2e:e4:35:41:a9:22:f9:03:af:14:de:12:f4:d2:41:
6d:44:aa:d2:e4:3c:7c:67:f7:4a:a3:69:8a:fe:11:
71:d6:85:ad:7a:24:91:0a:86:40:70:71:10:9e:eb:
ca:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
03:F2:78:F1:40:EC:05:35:38:EE:C8:C3:DD:58:B4:85:B0:4C:A0:33
X509v3 Authority Key Identifier:
keyid:21:B8:2F:C8:ED:88:F9:9C:AB:57:D7:68:03:17:6E:B2:7A:9F:0B:FA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IbgvyO2I-ZyrV9doAxdusnqfC_o.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/ab65f6-31be-4149-a6e3-ae5fa53b93b2/1/IbgvyO2I-ZyrV9doAxdusnqfC_o.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
5f:d9:ca:44:d5:e3:be:4d:4d:22:eb:9f:65:6c:04:a6:90:a7:
cb:17:a0:e3:77:da:00:a3:93:ec:00:7d:d2:0e:55:e0:1b:e4:
eb:d7:bd:ed:b4:e9:21:5c:90:97:83:07:67:f3:3d:68:e6:69:
4b:d6:89:c7:e7:5d:c9:90:75:0b:2d:e2:70:01:42:f1:f2:2d:
69:63:ea:1b:e4:8d:93:fc:69:60:b2:2f:5e:3b:61:ce:af:90:
03:3a:30:9e:98:8e:37:90:0b:a1:72:5c:14:d1:16:79:f6:09:
06:89:91:8f:ec:89:0a:33:77:a1:d8:48:fa:7d:f9:03:cd:30:
5b:b4:f2:51:2a:d5:98:6d:e5:25:04:50:a0:e0:72:05:1c:85:
6f:d1:90:58:d4:ff:73:3c:32:60:61:aa:4f:3f:f8:cf:06:13:
0c:64:22:ac:28:5d:5f:ff:d8:f5:00:93:66:56:7a:fc:5b:c3:
a9:95:80:9d:6c:11:91:61:63:a7:8e:ee:a0:4f:e3:b8:7c:cc:
b6:4e:cb:b0:a7:14:6d:da:af:fa:e2:02:12:48:9e:21:66:5a:
50:13:95:d6:03:14:8f:68:95:2a:45:05:96:59:33:56:e6:2a:
cb:e7:d8:8d:aa:cd:13:f5:31:2e:8a:24:ef:e1:70:75:66:28:
70:91:8d:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 7 01:08:28 2025 by rpki-client